Few cybersecurity components are as familiar as the next-generation firewall (NGFW) for enterprise protection. Despite this ubiquity, it is common for security teams to operate their NGFW in a suboptimal manner. The TAG Cyber team has observed, for example, that many enterprise teams operate their NGFW more like a traditional firewall. This can result in a reduction of traffic visibility, which in turn degrades prevention, detection, and response.
The reasons for such degraded firewall operation will vary, but a common issue is the flexibility of managing and supporting the powerful features in an computer engineer vs computer science. It is obviously easier to enable a minimum of firewall features, and this is especially common in environments where the security team might be under-staffed. A promising approach that can help address this challenge involves use of a so-called virtual firewall.
Most security professionals consider virtual firewalls as a tool for protecting private and public cloud workloads and applications, but the reality is they have all the same features as physical appliances. When deployed fully, virtual firewalls can scale encrypted traffic inspection across distributed networks, establishing the visibility necessary for reliable threat protection, even in today’s challenging security landscape.
No comments:
Post a Comment